🦞 OpenClaw Exposure Watchboard

This page lists publicly reachable active OpenClaw instances for defensive awareness. If this is your deployment, enable authentication, remove direct public exposure, and patch immediately.

Exposed Instances: 643649 Page: 5954 / 6437 (100 per page) Showing: 595301-595400 Last Imported: 12/04/2026, 00:31:21

🇨🇳 354,373

🇺🇸 169,554

Endpoint	Assistant Name	Country	auth_required	is_active	has_leaked_creds	asn	asn_name	org	first_seen	last_seen	asi_has_breach	asi_has_threat_actor	asi_threat_actors	asi_cves	asi_enriched_at	asi_domains
47.105.103.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	07/02/2026, 22:35:06	12/04/2026, 00:06:44	No	Yes	APT28, APT40, Energetic Bear, Equation Group, Leafminer, Luckycat APT	CVE-2010-1899, CVE-2010-2730, CVE-2010-3972	07/02/2026, 22:35:40	-
47.254.51.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	07/02/2026, 22:35:06	25/02/2026, 11:37:29	No	No	-	-	01/02/2026, 22:35:41	-
180.76.58.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:32:53	03/03/2026, 16:11:57	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:36:17	tfn.net.tw, baidu.com
64.227.98.•••:443	Kit (🛠️)	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:53	31/03/2026, 17:16:47	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:36:20	-
101.43.150.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 22:32:53	04/03/2026, 12:47:19	Yes	Yes	APT37, El-Machete	-	07/02/2026, 22:36:23	tencent.com, optage.co.jp
62.234.215.•••:18789	Antigravity (/avatar/main)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 22:32:53	06/03/2026, 15:36:45	No	Yes	APT37, El-Machete	-	07/02/2026, 22:36:28	-
116.203.42.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	07/02/2026, 22:32:53	26/02/2026, 14:55:35	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-29323, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:36:29	hetzner.de, hetzner.com
2001:41d0:601:1100::817f:18789	-	🇵🇱 Poland	-	true	Clean	AS16276	OVH SAS	OVH Poland	07/02/2026, 22:32:53	21/03/2026, 22:21:01	-	-	-	-	-	-
170.106.110.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:32:53	28/02/2026, 20:23:38	No	Yes	APT35, APT37, Callisto Group, Cobalt Group, El-Machete, MoustachedBouncer	CVE-2007-4559, CVE-2015-5652, CVE-2016-20012, CVE-2017-17522, CVE-2017-18207, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9674, CVE-2020-14145, CVE-2020-15778, CVE-2021-23336, CVE-2021-36368, CVE-2021-3733, CVE-2021-41617, CVE-2022-0391, CVE-2022-26488, CVE-2022-45061, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:36:35	-
43.167.196.•••:80	小森 (🌲)	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:32:53	02/03/2026, 17:40:41	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:36:37	tencent.com
120.48.140.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:32:53	03/03/2026, 11:46:17	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:36:40	chinamobile.com, chinamobile.cn, baidu.com
37.27.242.•••:18789	-	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:32:53	10/04/2026, 01:00:44	No	No	-	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:36:42	-
149.107.111.•••:18789	-	🇬🇧 United Kingdom	Yes	true	Leaked	AS41354	ITS Technology Group Limited	ITS Technology Group	07/02/2026, 22:32:53	05/03/2026, 00:07:17	Yes	No	-	-	04/03/2026, 23:28:45	cogentco.com
161.35.77.•••:443	Assistant	🇩🇪 Germany	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:53	22/03/2026, 15:21:21	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:36:45	-
64.227.165.•••:443	Rozee (✨)	🇮🇳 India	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:52	10/04/2026, 17:47:18	No	No	-	-	01/02/2026, 22:36:52	-
43.160.239.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:32:52	06/03/2026, 23:05:43	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/03/2026, 12:32:11	tencent.com
143.198.70.•••:443	-	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:52	28/02/2026, 04:50:42	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, Chimera APT, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2005-0877, CVE-2009-2957, CVE-2009-2958, CVE-2012-3411, CVE-2013-0198, CVE-2015-3294, CVE-2015-8899, CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2019-14513, CVE-2019-14834, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	07/02/2026, 22:36:55	-
157.245.182.•••:443	Luna Bot (🌙)	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:52	11/04/2026, 05:41:48	No	No	-	-	01/02/2026, 22:36:59	-
47.77.231.•••:18789	Jarvis (/avatar/main)	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	07/02/2026, 22:32:52	10/04/2026, 17:45:34	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/03/2026, 23:52:30	hichina.com, alibaba-inc.com
43.156.226.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:32:52	05/03/2026, 00:07:40	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:37:01	tencent.com
167.172.203.•••:443	Moth (/avatar/main)	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:52	03/03/2026, 08:53:45	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	03/03/2026, 07:01:36	-
149.88.64.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	true	Leaked	AS401696	cognetcloud INC	Hong Kong Cloud Network Technology Co Ltd	07/02/2026, 22:32:52	02/03/2026, 19:09:37	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:37:08	cogentco.com
221.229.0.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS146966	China Telecom	ChinaNet Jiangsu	07/02/2026, 22:32:52	01/03/2026, 06:02:44	Yes	No	-	-	07/02/2026, 22:37:10	bj189.cn, kornet.net, bizmeka.com, kt.com, ctwing.cn, homeap.co.kr, chinatelecom.com.cn, chinatelecom.cn, hhnsfarm.co.kr, new-gm.cn, 189.cn, ktds.com, ktlogis.com, 189free.cn, ktestate.com, kt-idc.com, kt.co.kr, daqu.com.cn, ktmediahub.com, ctyun.cn, ktcloud.com, ktfreetel.co.kr
107.150.47.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS33387	Nocix, LLC	[name redacted]	07/02/2026, 22:32:52	02/03/2026, 02:04:39	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Chimera APT, Cobalt Group, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-14513, CVE-2019-14834, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:37:12	-
143.198.108.•••:443	James	🇺🇸 United States	Yes	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:32:52	10/04/2026, 01:00:58	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:37:13	-
46.224.19.•••:443	E! (🤖)	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:32:52	06/04/2026, 12:04:44	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:37:15	-
43.131.255.•••:443	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:32:52	12/04/2026, 00:03:51	Yes	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387	07/02/2026, 22:37:22	tencent.com
8.137.90.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	07/02/2026, 22:32:52	12/03/2026, 20:06:38	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:37:23	-
180.76.53.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:32:52	04/03/2026, 12:47:31	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:37:26	tfn.net.tw, baidu.com
38.246.244.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS979	NetLab Global	Cogent Communications	07/02/2026, 22:32:52	25/02/2026, 11:34:49	Yes	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:37:27	cogentco.com
165.232.109.•••:18789	-	🇬🇧 United Kingdom	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:41	11/04/2026, 21:02:31	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:31:37	-
62.171.137.•••:18789	-	🇫🇷 France	-	true	Leaked	AS51167	Contabo GmbH	Contabo	07/02/2026, 22:30:41	13/03/2026, 23:40:33	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:31:38	contabo.de, duckdns.org, contabo.net
46.224.89.•••:18789	Claudione (🦾)	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:30:41	06/03/2026, 23:01:50	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:31:39	-
180.76.134.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:30:41	04/03/2026, 12:45:13	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21707, CVE-2021-21708, CVE-2021-36368, CVE-2021-41617, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-37454	07/02/2026, 22:31:41	tfn.net.tw, baidu.com
47.97.75.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	07/02/2026, 22:30:41	26/02/2026, 06:44:21	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, Lyceum APT, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TA505, TEMP.Hermit, The Shadow Brokers, Volt Typhoon	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:31:42	-
180.76.58.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:30:41	03/03/2026, 16:09:42	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:31:44	tfn.net.tw, baidu.com
64.227.98.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:41	31/03/2026, 17:14:17	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:31:46	-
101.43.150.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 22:30:41	04/03/2026, 12:44:59	Yes	Yes	APT37, El-Machete	-	07/02/2026, 22:31:49	tencent.com, optage.co.jp
62.234.215.•••:18789	Antigravity (/avatar/main)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 22:30:40	06/03/2026, 13:18:50	No	Yes	APT37, El-Machete	-	07/02/2026, 22:31:54	-
116.203.42.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	07/02/2026, 22:30:40	26/02/2026, 13:24:18	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-29323, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:31:55	hetzner.de, hetzner.com
2001:41d0:601:1100::817f:18789	-	🇵🇱 Poland	-	true	Clean	AS16276	OVH SAS	OVH Poland	07/02/2026, 22:30:40	21/03/2026, 22:18:40	-	-	-	-	-	-
170.106.110.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:30:40	28/02/2026, 18:52:11	No	Yes	APT35, APT37, Callisto Group, Cobalt Group, El-Machete, MoustachedBouncer	CVE-2007-4559, CVE-2015-5652, CVE-2016-20012, CVE-2017-17522, CVE-2017-18207, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9674, CVE-2020-14145, CVE-2020-15778, CVE-2021-23336, CVE-2021-36368, CVE-2021-3733, CVE-2021-41617, CVE-2022-0391, CVE-2022-26488, CVE-2022-45061, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:32:01	-
120.48.140.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:30:40	03/03/2026, 09:29:58	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:32:06	chinamobile.com, chinamobile.cn, baidu.com
37.27.242.•••:18789	-	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:30:40	10/04/2026, 00:58:22	No	No	-	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:32:07	-
149.107.111.•••:18789	-	🇬🇧 United Kingdom	Yes	true	Clean	AS41354	ITS Technology Group Limited	ITS Technology Group	07/02/2026, 22:30:40	05/03/2026, 00:43:52	-	-	-	-	-	-
161.35.77.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:40	22/03/2026, 14:34:04	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:32:12	-
64.227.165.•••:18789	-	🇮🇳 India	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:40	10/04/2026, 17:43:22	No	No	-	-	01/02/2026, 22:32:19	-
43.160.239.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:30:40	06/03/2026, 21:33:42	-	-	-	-	-	-
143.198.70.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:40	28/02/2026, 03:19:24	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, Chimera APT, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2005-0877, CVE-2009-2957, CVE-2009-2958, CVE-2012-3411, CVE-2013-0198, CVE-2015-3294, CVE-2015-8899, CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2019-14513, CVE-2019-14834, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	07/02/2026, 22:32:23	-
157.245.182.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:39	11/04/2026, 03:23:51	No	No	-	-	01/02/2026, 22:32:26	-
47.77.231.•••:18789	Jarvis (/avatar/main)	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	07/02/2026, 22:30:39	27/03/2026, 00:26:18	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	05/03/2026, 00:47:19	hichina.com, alibaba-inc.com
43.156.226.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:30:39	05/03/2026, 00:44:14	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:32:28	tencent.com
167.172.203.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:39	01/03/2026, 05:59:25	-	-	-	-	-	-
149.88.64.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	true	Leaked	AS401696	cognetcloud INC	Hong Kong Cloud Network Technology Co Ltd	07/02/2026, 22:30:39	02/03/2026, 18:22:32	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:32:34	cogentco.com
221.229.0.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS146966	China Telecom	ChinaNet Jiangsu	07/02/2026, 22:30:39	01/03/2026, 06:00:26	Yes	No	-	-	07/02/2026, 22:32:37	bj189.cn, kornet.net, bizmeka.com, kt.com, ctwing.cn, homeap.co.kr, chinatelecom.com.cn, chinatelecom.cn, hhnsfarm.co.kr, new-gm.cn, 189.cn, ktds.com, ktlogis.com, 189free.cn, ktestate.com, kt-idc.com, kt.co.kr, daqu.com.cn, ktmediahub.com, ctyun.cn, ktcloud.com, ktfreetel.co.kr
107.150.47.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS33387	Nocix, LLC	[name redacted]	07/02/2026, 22:30:39	01/03/2026, 23:03:48	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Chimera APT, Cobalt Group, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-14513, CVE-2019-14834, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:32:39	-
143.198.108.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:30:39	10/04/2026, 00:13:13	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:32:40	-
46.224.19.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:30:39	03/04/2026, 23:10:15	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:32:42	-
124.156.141.•••:18789	Shelby (💩)	🇭🇰 Hong Kong	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:28:27	03/03/2026, 09:27:42	Yes	Yes	APT37, El-Machete, Packrat	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:33:15	tencent.com, chinaunicom.cn
165.232.109.•••:18789	-	🇬🇧 United Kingdom	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:27	11/04/2026, 21:00:10	No	No	-	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:33:16	-
62.171.137.•••:18789	-	🇫🇷 France	-	true	Leaked	AS51167	Contabo GmbH	Contabo	07/02/2026, 22:28:27	13/03/2026, 23:38:15	Yes	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:33:17	contabo.de, duckdns.org, contabo.net
46.224.89.•••:18789	Claudione (🦾)	🇩🇪 Germany	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:28:27	06/03/2026, 23:44:36	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:33:18	-
180.76.134.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:28:27	04/03/2026, 12:42:57	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	CVE-2016-20012, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-21703, CVE-2021-21704, CVE-2021-21705, CVE-2021-21707, CVE-2021-21708, CVE-2021-36368, CVE-2021-41617, CVE-2022-31625, CVE-2022-31626, CVE-2022-31628, CVE-2022-31629, CVE-2022-31630, CVE-2022-37454	07/02/2026, 22:33:20	tfn.net.tw, baidu.com
47.97.75.•••:18789	-	🇨🇳 China mainland	-	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alisoft	07/02/2026, 22:28:27	26/02/2026, 06:42:03	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Carbanak, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, Lyceum APT, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, TA505, TEMP.Hermit, The Shadow Brokers, Volt Typhoon	CVE-2015-5352, CVE-2015-5600, CVE-2015-6563, CVE-2015-6564, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-1908, CVE-2016-20012, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:33:21	-
180.76.58.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:28:27	07/03/2026, 06:20:02	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:33:23	tfn.net.tw, baidu.com
64.227.98.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:27	31/03/2026, 17:12:00	No	Yes	APT-C-23, APT15, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2016-20012, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-23017, CVE-2021-28041, CVE-2021-3618, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:33:25	-
101.43.150.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Leaked	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 22:28:26	16/03/2026, 18:03:22	Yes	Yes	APT37, El-Machete	-	07/02/2026, 22:33:29	tencent.com, optage.co.jp
62.234.215.•••:18789	Antigravity (/avatar/main)	🇨🇳 China mainland	Yes	true	Clean	AS45090	Shenzhen Tencent Computer Systems Company Limited	Tencent Cloud Computing	07/02/2026, 22:28:26	06/03/2026, 13:16:34	No	Yes	APT37, El-Machete	-	07/02/2026, 22:33:33	-
116.203.42.•••:18789	-	🇩🇪 Germany	Yes	true	Leaked	AS24940	Hetzner Online GmbH	Hetzner Online	07/02/2026, 22:28:26	26/02/2026, 13:21:57	Yes	Yes	APT14, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2006-20001, CVE-2015-8325, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, CVE-2016-10012, CVE-2016-10708, CVE-2016-3115, CVE-2016-6210, CVE-2016-6515, CVE-2016-8858, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-27522, CVE-2023-28531, CVE-2023-29323, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-24795, CVE-2024-27316, CVE-2024-36387, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-39894, CVE-2024-40898, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:33:35	hetzner.de, hetzner.com
2001:41d0:601:1100::817f:18789	-	🇵🇱 Poland	-	true	Clean	AS16276	OVH SAS	OVH Poland	07/02/2026, 22:28:26	11/04/2026, 22:30:11	-	-	-	-	-	-
170.106.110.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:28:26	28/02/2026, 18:49:54	No	Yes	APT35, APT37, Callisto Group, Cobalt Group, El-Machete, MoustachedBouncer	CVE-2007-4559, CVE-2015-5652, CVE-2016-20012, CVE-2017-17522, CVE-2017-18207, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9674, CVE-2020-14145, CVE-2020-15778, CVE-2021-23336, CVE-2021-36368, CVE-2021-3733, CVE-2021-41617, CVE-2022-0391, CVE-2022-26488, CVE-2022-45061, CVE-2022-48560, CVE-2022-48564, CVE-2022-48565, CVE-2022-48566, CVE-2023-24329, CVE-2023-27043, CVE-2023-36632, CVE-2023-38408, CVE-2023-40217, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:33:40	-
120.48.140.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS38365	Beijing Baidu Netcom Science and Technology Co., Ltd.	Baidu	07/02/2026, 22:28:26	03/03/2026, 09:27:41	Yes	Yes	APT17, APT37, DragonFly, El-Machete, Gozi, Packrat	-	07/02/2026, 22:33:45	chinamobile.com, chinamobile.cn, baidu.com
37.27.242.•••:18789	-	🇫🇮 Finland	Yes	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:28:26	10/04/2026, 00:56:03	No	No	-	CVE-2021-3618, CVE-2022-41741, CVE-2022-41742, CVE-2023-44487, CVE-2024-39894, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:33:46	-
149.107.111.•••:18789	-	🇬🇧 United Kingdom	Yes	true	Clean	AS41354	ITS Technology Group Limited	ITS Technology Group	07/02/2026, 22:28:26	05/03/2026, 00:41:33	-	-	-	-	-	-
161.35.77.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:26	22/03/2026, 14:31:44	No	Yes	APT15, APT28, APT29, APT31, APT34, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2016-20012, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2021-28041, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:33:51	-
64.227.165.•••:18789	-	🇮🇳 India	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:26	10/04/2026, 17:41:01	No	No	-	-	01/02/2026, 22:33:57	-
43.160.239.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:28:26	06/03/2026, 22:16:16	Yes	No	-	CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	06/03/2026, 20:04:40	tencent.com
143.198.70.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:25	28/02/2026, 03:17:10	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, Chimera APT, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2005-0877, CVE-2009-2957, CVE-2009-2958, CVE-2012-3411, CVE-2013-0198, CVE-2015-3294, CVE-2015-8899, CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2019-14513, CVE-2019-14834, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	07/02/2026, 22:34:01	-
157.245.182.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:25	11/04/2026, 03:21:30	No	No	-	-	01/02/2026, 22:34:04	-
47.77.231.•••:18789	Jarvis (/avatar/main)	🇨🇳 China mainland	Yes	true	Leaked	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud	07/02/2026, 22:28:25	10/04/2026, 17:40:53	Yes	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	04/03/2026, 14:45:35	hichina.com, alibaba-inc.com
43.156.226.•••:18789	-	🇸🇬 Singapore	Yes	true	Leaked	AS132203	Tencent Building, Kejizhongyi Avenue	Aceville Pte Ltd	07/02/2026, 22:28:25	05/03/2026, 00:41:54	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT37, APT41, Bitter APT, Bluenoroff, Callisto Group, Donot Team, El-Machete, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, Volt Typhoon	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385	07/02/2026, 22:34:07	tencent.com
167.172.203.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:25	03/03/2026, 06:18:41	No	No	-	CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/03/2026, 19:50:21	-
149.88.64.•••:18789	Assistant	🇭🇰 Hong Kong	Yes	true	Leaked	AS401696	cognetcloud INC	Hong Kong Cloud Network Technology Co Ltd	07/02/2026, 22:28:25	02/03/2026, 19:05:04	Yes	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-10708, CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:34:12	cogentco.com
221.229.0.•••:18789	Assistant	🇺🇸 United States	Yes	true	Leaked	AS146966	China Telecom	ChinaNet Jiangsu	07/02/2026, 22:28:25	01/03/2026, 05:58:07	Yes	No	-	-	07/02/2026, 22:34:16	bj189.cn, kornet.net, bizmeka.com, kt.com, ctwing.cn, homeap.co.kr, chinatelecom.com.cn, chinatelecom.cn, hhnsfarm.co.kr, new-gm.cn, 189.cn, ktds.com, ktlogis.com, 189free.cn, ktestate.com, kt-idc.com, kt.co.kr, daqu.com.cn, ktmediahub.com, ctyun.cn, ktcloud.com, ktfreetel.co.kr
107.150.47.•••:18789	Assistant	🇺🇸 United States	Yes	true	Clean	AS33387	Nocix, LLC	[name redacted]	07/02/2026, 22:28:25	01/03/2026, 23:01:31	No	Yes	APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT41, Bitter APT, Bluenoroff, Callisto Group, Chimera APT, Cobalt Group, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-14513, CVE-2019-14834, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:34:17	-
143.198.108.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:28:25	10/04/2026, 00:10:52	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:34:18	-
46.224.19.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:28:25	03/04/2026, 23:07:56	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:34:20	-
115.190.217.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS137718	Beijing Volcano Engine Technology Co., Ltd.	Beijing Volcano Engine Technology	07/02/2026, 22:26:13	15/03/2026, 11:40:13	No	No	-	-	01/02/2026, 22:28:23	-
47.250.114.•••:18789	Assistant	🇲🇾 Malaysia	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Malaysia	07/02/2026, 22:26:12	10/04/2026, 09:25:17	No	No	-	-	01/02/2026, 22:28:25	-
143.198.40.•••:18789	-	🇨🇦 Canada	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:26:12	10/03/2026, 21:09:18	No	Yes	APT14, APT15, APT28, APT29, APT31, APT34, APT35, APT37, APT39, APT40, APT41, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Equation Group, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, IronHusky, Kimsuky, Lazarus Group, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SharpPanda, SideWinder APT, TA505, The Shadow Brokers, UNC2452, Volt Typhoon, WIRTE	CVE-2006-20001, CVE-2016-20012, CVE-2017-15710, CVE-2017-15715, CVE-2017-15945, CVE-2018-11763, CVE-2018-1283, CVE-2018-1301, CVE-2018-1302, CVE-2018-1303, CVE-2018-1312, CVE-2018-1333, CVE-2018-15473, CVE-2018-15919, CVE-2018-17189, CVE-2018-17199, CVE-2018-20685, CVE-2019-0196, CVE-2019-0211, CVE-2019-0217, CVE-2019-0220, CVE-2019-10081, CVE-2019-10082, CVE-2019-10092, CVE-2019-10098, CVE-2019-17567, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2019-9517, CVE-2020-11993, CVE-2020-13938, CVE-2020-14145, CVE-2020-15778, CVE-2020-1927, CVE-2020-1934, CVE-2020-35452, CVE-2020-9490, CVE-2021-26690, CVE-2021-26691, CVE-2021-33193, CVE-2021-34798, CVE-2021-36368, CVE-2021-39275, CVE-2021-40438, CVE-2021-41617, CVE-2021-44224, CVE-2021-44790, CVE-2022-22719, CVE-2022-22720, CVE-2022-22721, CVE-2022-23943, CVE-2022-26377, CVE-2022-28330, CVE-2022-28614, CVE-2022-28615, CVE-2022-29404, CVE-2022-30556, CVE-2022-31813, CVE-2022-36760, CVE-2022-37436, CVE-2023-25690, CVE-2023-31122, CVE-2023-38408, CVE-2023-38709, CVE-2023-44487, CVE-2023-45802, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-11235, CVE-2024-1322, CVE-2024-24795, CVE-2024-27316, CVE-2024-38472, CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476, CVE-2024-38477, CVE-2024-39573, CVE-2024-40898, CVE-2024-6531, CVE-2024-7347, CVE-2025-1217, CVE-2025-1219, CVE-2025-1220, CVE-2025-14177, CVE-2025-14178, CVE-2025-14180, CVE-2025-1734, CVE-2025-1735, CVE-2025-1736, CVE-2025-1861, CVE-2025-23419, CVE-2025-6491	07/02/2026, 22:28:26	-
47.251.84.•••:18789	潜龙 (Qiánlóng) (🐉)	🇺🇸 United States	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	07/02/2026, 22:26:12	24/02/2026, 20:27:53	No	No	-	-	01/02/2026, 22:28:27	-
47.253.251.•••:18789	OpenClaw (🦀)	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	07/02/2026, 22:26:11	10/04/2026, 07:43:53	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	02/03/2026, 17:34:09	-
8.148.80.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	07/02/2026, 22:26:11	11/04/2026, 23:56:45	No	No	-	-	01/02/2026, 22:28:39	-
143.198.70.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:26:11	27/02/2026, 13:15:34	No	Yes	APT-C-23, APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT40, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Carbanak, ChamelGang, Chimera APT, CloudSorcerer, Cobalt Group, Daggerfly APT, Donot Team, Earth Berberoka, Gamaredon Group, Gaza Cybergang, Ghostwriter, Hafnium Group, Inception Framework, Kimsuky, Lazarus Group, MuddyWater Group, Patchwork, Pioneer Kitten, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Turla APT Group, Volt Typhoon	CVE-2005-0877, CVE-2009-2957, CVE-2009-2958, CVE-2012-3411, CVE-2013-0198, CVE-2015-3294, CVE-2015-8899, CVE-2016-20012, CVE-2017-13704, CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-15107, CVE-2019-14513, CVE-2019-14834, CVE-2020-12062, CVE-2020-14145, CVE-2020-15778, CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687, CVE-2021-28041, CVE-2021-3448, CVE-2021-36368, CVE-2021-41617, CVE-2022-41741, CVE-2022-41742, CVE-2023-28531, CVE-2023-38408, CVE-2023-44487, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2023-51767, CVE-2024-6387, CVE-2024-7347, CVE-2025-26465, CVE-2025-32728	07/02/2026, 22:28:41	-
157.245.182.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:26:11	11/04/2026, 23:57:34	No	No	-	-	01/02/2026, 22:28:42	-
47.253.230.•••:18789	Assistant	🇨🇳 China mainland	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud US	07/02/2026, 22:26:10	11/04/2026, 23:57:23	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-16905, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:28:46	-
143.198.108.•••:18789	-	🇺🇸 United States	-	true	Clean	AS14061	DigitalOcean, LLC	DigitalOcean	07/02/2026, 22:26:10	11/04/2026, 00:36:29	No	Yes	APT15, APT17, APT28, APT29, APT31, APT34, APT35, APT36, APT37, APT39, APT41, APT45, Bitter APT, Bluenoroff, Callisto Group, Cobalt Group, Donot Team, Gamaredon Group, Gaza Cybergang, Hafnium Group, Inception Framework, Kimsuky, MuddyWater Group, Mustang Panda, Patchwork, RomCom Group, Salt Typhoon, Sandworm Team, Sea Turtle Group, SideWinder APT, The Shadow Brokers, Volt Typhoon	CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-39894, CVE-2024-6387, CVE-2025-26465, CVE-2025-26466, CVE-2025-32728	07/02/2026, 22:28:48	-
46.224.19.•••:18789	-	🇩🇪 Germany	-	true	Clean	AS24940	Hetzner Online GmbH	Hetzner	07/02/2026, 22:26:10	05/04/2026, 03:11:30	No	No	-	CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:28:49	-
47.250.124.•••:18789	Assistant	🇲🇾 Malaysia	Yes	true	Clean	AS45102	Alibaba (US) Technology Co., Ltd.	Alibaba Cloud Malaysia	07/02/2026, 22:26:10	11/04/2026, 23:57:20	No	No	-	CVE-2016-20012, CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-28531, CVE-2023-38408, CVE-2023-48795, CVE-2023-51384, CVE-2023-51385, CVE-2024-6387, CVE-2025-26465, CVE-2025-32728, CVE-2025-61984, CVE-2025-61985	07/02/2026, 22:28:50	-
8.138.149.•••:18789	Assistant	🇸🇬 Singapore	Yes	true	Clean	AS37963	Hangzhou Alibaba Advertising Co.,Ltd.	Alibaba Cloud	07/02/2026, 21:51:41	12/04/2026, 00:07:36	No	No	-	CVE-2016-20012, CVE-2019-16905, CVE-2020-14145, CVE-2020-15778, CVE-2021-36368, CVE-2021-41617, CVE-2023-38408, CVE-2023-48795, CVE-2023-51385, CVE-2025-26465, CVE-2025-32728	07/02/2026, 21:54:30	-

🦞 OpenClaw Exposure Watchboard

Ship Secure Enterprise AI Agents 10× Faster with vivgrid.com

Vivgrid gives you authentication, model gateway, tool control, cost tracking, and enterprise observability — everything you need to ship AI agents safely at scale.